Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2023-25492
HistoryMay 01, 2023 - 3:15 p.m.

CVE-2023-25492

2023-05-0115:15:09
CWE-134
[email protected]
web.nvd.nist.gov
15
cve-2023-25492
denial of service
xcc web interface
format string injection
web interface api
nvd

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.7%

JSON

A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API.

Affected configurations

NVD
Node
lenovothinkagile_hx5530Match-
AND
lenovothinkagile_hx5530_firmwareRange<2.93_afbt30p
Node
lenovothinkagile_hx7530Match-
AND
lenovothinkagile_hx7530_firmwareRange<2.93_afbt30p
Node
lenovothinkagile_vx3331Match-
AND
lenovothinkagile_vx3331_firmwareRange<2.93_afbt30p
Node
lenovothinkagile_hx_enclosureMatch-
AND
lenovothinkagile_hx_enclosure_firmwareRange<3.72_tei388s
Node
lenovothinkagile_hx1021Match-
AND
lenovothinkagile_hx1021_firmwareRange<3.72_tei388s
Node
lenovothinkagile_hx1320Match-
AND
lenovothinkagile_hx1320_firmwareRange<8.88_cdi3a4a
Node
lenovothinkagile_hx1321Match-
AND
lenovothinkagile_hx1321_firmwareRange<8.88_cdi3a4a
Node
lenovothinkagile_hx1331Match-
AND
lenovothinkagile_hx1331_firmwareRange<2.93_afbt30p
Node
lenovothinkagile_hx1520-rMatch-
AND
lenovothinkagile_hx1520-r_firmwareRange<8.88_cdi3a4a
Node
lenovothinkagile_hx1521-r_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx1521-rMatch-
Node
lenovothinkagile_hx2320-e_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx2320-eMatch-
Node
lenovothinkagile_hx2321_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx2321Match-
Node
lenovothinkagile_hx2330_firmwareRange<2.93_afbt30p
OR
lenovothinkagile_hx2330_firmwareMatch2.93_afbt30p
AND
lenovothinkagile_hx2330Match-
Node
lenovothinkagile_hx2331_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_hx2331Match-
Node
lenovothinkagile_hx2720-e_firmwareRange<3.72_tei388s
AND
lenovothinkagile_hx2720-eMatch-
Node
lenovothinkagile_hx3320_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx3320Match-
Node
lenovothinkagile_hx3321_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx3321Match-
Node
lenovothinkagile_hx3330_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_hx3330Match-
Node
lenovothinkagile_hx3331_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_hx3331Match-
Node
lenovothinkagile_hx3331_firmwareRange<4.71_d8bt48p
AND
lenovothinkagile_hx3331Match-
Node
lenovothinkagile_hx3375_firmwareRange<4.71_d8bt48p
AND
lenovothinkagile_hx3375Match-
Node
lenovothinkagile_hx3376_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx3376Match-
Node
lenovothinkagile_hx3520-g_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx3520-gMatch-
Node
lenovothinkagile_hx3521-g_firmwareRange<3.72_tei388s
AND
lenovothinkagile_hx3521-gMatch-
Node
lenovothinkagile_hx3720_firmwareRange<3.72_tei388s
AND
lenovothinkagile_hx3720Match-
Node
lenovothinkagile_hx3721_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx3721Match-
Node
lenovothinkagile_hx5520_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx5520Match-
Node
lenovothinkagile_hx5520-c_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx5520-cMatch-
Node
lenovothinkagile_hx5521_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx5521Match-
Node
lenovothinkagile_hx5521-c_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_hx5521-cMatch-
Node
lenovothinkagile_hx5531_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx5531Match-
Node
lenovothinkagile_hx7520_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_hx7520Match-
Node
lenovothinkagile_hx7521_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_hx7521Match-
Node
lenovothinkagile_hx7530_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_hx7530Match-
Node
lenovothinkagile_hx7531_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_hx7531Match-
Node
lenovothinkagile_hx7531_firmwareRange<2.75_psi348s
AND
lenovothinkagile_hx7531Match-
Node
lenovothinkagile_hx7820_firmwareRange<2.75_psi348s
AND
lenovothinkagile_hx7820Match-
Node
lenovothinkagile_hx7821_firmwareRange<3.72_tei388s
AND
lenovothinkagile_hx7821Match-
Node
lenovothinkagile_mx1020_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx1020Match-
Node
lenovothinkagile_mx3330-f_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx3330-fMatch-
Node
lenovothinkagile_mx3330-h_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx3330-hMatch-
Node
lenovothinkagile_mx3331-f_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx3331-fMatch-
Node
lenovothinkagile_mx3331-h_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx3331-hMatch-
Node
lenovothinkagile_mx3530_f_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx3530_fMatch-
Node
lenovothinkagile_mx3530-h_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx3530-hMatch-
Node
lenovothinkagile_mx3531_h_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_mx3531_hMatch-
Node
lenovothinkagile_mx3531-f_firmwareRange<3.72_tei388s
AND
lenovothinkagile_mx3531-fMatch-
Node
lenovothinkagile_mx1021_on_se350_firmwareRange<3.72_tei388s
AND
lenovothinkagile_mx1021_on_se350Match-
Node
lenovothinkagile_vx_1se_firmwareRange<3.72_tei388s
AND
lenovothinkagile_vx_1seMatch-
Node
lenovothinkagile_vx_2u4n_firmwareRange<3.72_tei388s
AND
lenovothinkagile_vx_2u4nMatch-
Node
lenovothinkagile_vx_4u_firmwareRange<2.75_psi348s
AND
lenovothinkagile_vx_4uMatch-
Node
lenovothinkagile_vx1320_firmwareRange<3.72_tei388s
AND
lenovothinkagile_vx1320Match-
Node
lenovothinkagile_vx2320_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_vx2320Match-
Node
lenovothinkagile_vx2330_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_vx2330Match-
Node
lenovothinkagile_vx3320_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_vx3320Match-
Node
lenovothinkagile_vx3330_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_vx3330Match-
Node
lenovothinkagile_vx3520-g_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_vx3520-gMatch-
Node
lenovothinkagile_vx3530-g_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_vx3530-gMatch-
Node
lenovothinkagile_vx3720_firmwareRange<3.72_tei388s
AND
lenovothinkagile_vx3720Match-
Node
lenovothinkagile_vx5520_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_vx5520Match-
Node
lenovothinkagile_vx5530_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_vx5530Match-
Node
lenovothinkagile_vx7320_n_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_vx7320_nMatch-
Node
lenovothinkagile_vx7330_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_vx7330Match-
Node
lenovothinkagile_vx7520_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_vx7520Match-
Node
lenovothinkagile_vx7520_n_firmwareRange<8.88_cdi3a4a
AND
lenovothinkagile_vx7520_nMatch-
Node
lenovothinkagile_vx7530_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_vx7530Match-
Node
lenovothinkagile_vx7531_firmwareRange<2.93_afbt30p
AND
lenovothinkagile_vx7531Match-
Node
lenovothinkagile_vx7820_firmwareRange<2.75_psi348s
AND
lenovothinkagile_vx7820Match-
Node
lenovothinkedge_se450__firmwareRange<1.60_usx324o
AND
lenovothinkedge_se450_Match-
Node
lenovothinkstation_p920_firmwareRange<8.88_cdi3a4a
AND
lenovothinkstation_p920Match-
Node
lenovothinksystem_sd530_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sd530Match-
Node
lenovothinksystem_sd630_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sd630_v2Match-
Node
lenovothinksystem_sd650_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sd650Match-
Node
lenovothinksystem_sd650_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sd650_v2Match-
Node
lenovothinksystem_sd650-n_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sd650-n_v2Match-
Node
lenovothinksystem_se350_firmwareRange<3.72_tei388s
AND
lenovothinksystem_se350Match-
Node
lenovothinksystem_sn550_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sn550Match-
Node
lenovothinksystem_sn550_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sn550_v2Match-
Node
lenovothinksystem_sn850_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sn850Match-
Node
lenovothinksystem_sr150_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr150Match-
Node
lenovothinksystem_sr158_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr158Match-
Node
lenovothinksystem_sr250_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr250Match-
Node
lenovothinksystem_sr250_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sr250_v2Match-
Node
lenovothinksystem_sr258_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr258Match-
Node
lenovothinksystem_sr258_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sr258_v2Match-
Node
lenovothinksystem_sr530_firmwareRange<8.88_cdi3a4a
AND
lenovothinksystem_sr530Match-
Node
lenovothinksystem_sr550_firmwareRange<8.88_cdi3a4a
AND
lenovothinksystem_sr550Match-
Node
lenovothinksystem_sr570_firmwareRange<8.88_cdi3a4a
AND
lenovothinksystem_sr570Match-
Node
lenovothinksystem_sr590_firmwareRange<8.88_cdi3a4a
AND
lenovothinksystem_sr590Match-
Node
lenovothinksystem_sr630_firmwareRange<8.88_cdi3a4a
AND
lenovothinksystem_sr630Match-
Node
lenovothinksystem_sr630_v2_firmwareRange<2.93_afbt30p
AND
lenovothinksystem_sr630_v2Match-
Node
lenovothinksystem_sr645_firmwareRange<4.71_d8bt48p
AND
lenovothinksystem_sr645Match-
Node
lenovothinksystem_sr645_v3_firmwareRange<4.71_d8bt48p
AND
lenovothinksystem_sr645_v3Match-
Node
lenovothinksystem_sr650_firmwareRange<8.88_cdi3a4a
AND
lenovothinksystem_sr650Match-
Node
lenovothinksystem_sr650_v2_firmwareRange<2.93_afbt30p
AND
lenovothinksystem_sr650_v2Match-
Node
lenovothinksystem_sr665_firmwareRange<4.71_d8bt48p
AND
lenovothinksystem_sr665Match-
Node
lenovothinksystem_sr665_v3_firmwareRange<4.71_d8bt48p
AND
lenovothinksystem_sr665_v3Match-
Node
lenovothinksystem_sr670_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr670Match-
Node
lenovothinksystem_sr670_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sr670_v2Match-
Node
lenovothinksystem_sr850_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr850Match-
Node
lenovothinksystem_sr850_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sr850_v2Match-
Node
lenovothinksystem_sr850p_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr850pMatch-
Node
lenovothinksystem_sr860_firmwareRange<3.72_tei388s
AND
lenovothinksystem_sr860Match-
Node
lenovothinksystem_sr860_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_sr860_v2Match-
Node
lenovothinksystem_sr950_firmwareRange<2.75_psi348s
AND
lenovothinksystem_sr950Match-
Node
lenovothinksystem_st250_firmwareRange<3.72_tei388s
AND
lenovothinksystem_st250Match-
Node
lenovothinksystem_st250_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_st250_v2Match-
Node
lenovothinksystem_st258_firmwareRange<3.72_tei388s
AND
lenovothinksystem_st258Match-
Node
lenovothinksystem_st258_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_st258_v2Match-
Node
lenovothinksystem_st550_firmwareRange<8.88_cdi3a4a
AND
lenovothinksystem_st550Match-
Node
lenovothinksystem_st650_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_st650_v2Match-
Node
lenovothinksystem_st658_v2_firmwareRange<2.60_tgbt42h
AND
lenovothinksystem_st658_v2Match-

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "XClarity Controller",
    "vendor": "Lenovo",
    "versions": [
      {
        "status": "affected",
        "version": "See product security advisory below"
      }
    ]
  }
]

Related

cvelist 1
prion 1
nvd 1
cvelist
cvelist
CVE-2023-25492
2023-05-01 14:11:48
prion
prion
Format string
2023-05-01 15:15:00
nvd
nvd
CVE-2023-25492
2023-05-01 15:15:09

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.7%

JSON
Related for CVE-2023-25492
cvelist1prion1nvd1